Multiple off-by-one buffer overflows in the IMAP capability for Mutt 1.3.28 and previous versions, and Balsa 1.2.4 and previous versions, allow a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a specially crafted mail folder, a different vulnerability than CVE-2003-0140.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mutt mutt 1.3.12.1 |
||
mutt mutt 1.3.17 |
||
mutt mutt 1.3.28 |
||
mutt mutt 1.3.22 |
||
mutt mutt 1.3.24 |
||
mutt mutt 1.3.25 |
||
mutt mutt 1.3.27 |
||
mutt mutt 1.3.12 |
||
mutt mutt 1.3.16 |